Quality Review

Review code, content, or deliverables for quality, clarity, and correctness. Adapts review criteria based on artifact type (code, documentation, PRD, design, configuration). Use this skill when a quality review has been requested on completed work.

5 stars

Best use case

Quality Review is best used when you need a repeatable AI agent workflow instead of a one-off prompt.

Review code, content, or deliverables for quality, clarity, and correctness. Adapts review criteria based on artifact type (code, documentation, PRD, design, configuration). Use this skill when a quality review has been requested on completed work.

Teams using Quality Review should expect a more consistent output, faster repeated execution, less prompt rewriting.

When to use this skill

  • You want a reusable workflow that can be run more than once with consistent structure.

When not to use this skill

  • You only need a quick one-off answer and do not need a reusable workflow.
  • You cannot install or maintain the underlying files, dependencies, or repository context.

Installation

Claude Code / Cursor / Codex

$curl -o ~/.claude/skills/quality-review/SKILL.md --create-dirs "https://raw.githubusercontent.com/BasharAmso/Bashi/main/.claude/skills/quality-review/SKILL.md"

Manual Installation

  1. Download SKILL.md from GitHub
  2. Place it in .claude/skills/quality-review/SKILL.md inside your project
  3. Restart your AI agent — it will auto-discover the skill

How Quality Review Compares

Feature / AgentQuality ReviewStandard Approach
Platform SupportNot specifiedLimited / Varies
Context Awareness High Baseline
Installation ComplexityUnknownN/A

Frequently Asked Questions

What does this skill do?

Review code, content, or deliverables for quality, clarity, and correctness. Adapts review criteria based on artifact type (code, documentation, PRD, design, configuration). Use this skill when a quality review has been requested on completed work.

Where can I find the source code?

You can find the source code on GitHub using the link provided at the top of the page.

Related Guides

SKILL.md Source

# Skill: Quality Review

## Metadata

| Field | Value |
|-------|-------|
| **Skill ID** | SKL-0002 |
| **Version** | 2.0 |
| **Owner** | reviewer |
| **Inputs** | Files or content to review, STATE.md, DECISIONS.md |
| **Outputs** | Review summary with findings and suggestions, STATE.md updated |
| **Triggers** | `QUALITY_REVIEW_REQUESTED` |

---

## Purpose

Run a structured review for quality, clarity, and correctness on any project artifact. Unlike Code Review (SKL-0016) which focuses on code correctness and security, this skill reviews *any* deliverable — documentation, PRDs, architecture docs, config files, or content. Adapts its checklist based on the artifact type.

> For code-specific review, use SKL-0016 (Code Review). For security-specific review, use SKL-0015 (Security Audit). This skill handles everything else.

---

## Procedure

### Step 1 — Identify Target and Artifact Type

Read the event description or active task to determine what needs review. Classify the artifact:

| Artifact Type | Examples | Primary Checklist |
|---------------|----------|-------------------|
| **Code** | Source files, scripts, configs | Redirect to SKL-0016 (Code Review) |
| **Documentation** | README, API docs, guides, changelogs | Documentation checklist |
| **PRD / GDD** | docs/PRD.md, docs/GDD.md | Product document checklist |
| **Architecture** | docs/ARCHITECTURE.md, ADRs | Architecture checklist |
| **Design** | docs/ux/*.md, wireframes, flow docs | Design document checklist |
| **Configuration** | .env.example, CI/CD configs, MCP configs | Configuration checklist |
| **Content** | Landing page copy, email templates, blog posts | Content checklist |

If the artifact is code, suggest using SKL-0016 instead and stop. This skill is for non-code artifacts.

### Step 2 — Apply Artifact-Specific Checklist

#### Documentation Checklist

| Check | Pass Criteria |
|-------|--------------|
| Structure | Logical heading hierarchy (H1 → H2 → H3, no skipped levels) |
| Completeness | No empty sections, no TODO placeholders, no "TBD" |
| Accuracy | Claims match actual code/config (spot-check 2-3 references) |
| Audience fit | Language matches target audience (technical for API docs, plain for README) |
| Links | Internal links work, external links are relevant |
| Freshness | No outdated version numbers, file paths, or feature descriptions |

#### Product Document Checklist (PRD / GDD)

| Check | Pass Criteria |
|-------|--------------|
| Problem statement | Clearly articulated with evidence |
| Target user | Specifically defined (not "everyone") |
| Scope boundaries | In-scope and out-of-scope are explicit |
| Success metrics | Measurable with baseline, target, and timeframe |
| Kill rule | Defined (what signal means "stop building this") |
| Consistency | Doesn't contradict DECISIONS.md |
| Completeness | All required sections present per SKL-0004/SKL-0028 template |

#### Architecture Checklist

| Check | Pass Criteria |
|-------|--------------|
| Tech stack | Justified (not just "because it's popular") |
| Component boundaries | Clear ownership and interfaces between components |
| Data model | Entities, relationships, and storage decisions documented |
| Trade-offs | Each decision notes what was traded for what |
| Scalability | At least one note on what happens under 10x load |
| Dependencies | External service dependencies identified with fallback strategy |

#### Design Document Checklist

| Check | Pass Criteria |
|-------|--------------|
| User flow | Happy path + at least 2 error/edge paths documented |
| All states | Empty, loading, error, success, and partial states covered |
| Accessibility | WCAG 2.1 AA considerations noted |
| Responsiveness | Mobile and desktop layouts addressed |
| Consistency | Matches existing project patterns and conventions |

#### Configuration Checklist

| Check | Pass Criteria |
|-------|--------------|
| No secrets | No hardcoded credentials, tokens, or keys |
| Documentation | Each setting has a comment or is documented elsewhere |
| Defaults | Sensible defaults that work out of the box |
| Environment parity | Dev/staging/prod differences are explicit, not implicit |

#### Content Checklist

| Check | Pass Criteria |
|-------|--------------|
| Clarity | Plain language, target 8th-grade reading level for public content |
| Accuracy | No unsupported claims or fabricated data |
| Voice consistency | Matches brand/project tone |
| CTA quality | Clear, actionable, no "click here" |
| SEO basics | Heading hierarchy, meta-ready structure |

### Step 3 — Produce Review Summary

Structure findings in three tiers:

| Tier | Meaning | Action |
|------|---------|--------|
| **Must Fix** | Incorrect, incomplete, or contradictory | Block until resolved |
| **Should Fix** | Unclear, inconsistent, or below quality bar | Fix before next milestone |
| **Nice to Have** | Polish, style, or minor improvements | Fix when convenient |

For each finding, provide:
- **Location** (file + section/line)
- **Issue** (what's wrong)
- **Fix** (specific recommendation)

### Step 4 — Issue Verdict

| Verdict | Criteria |
|---------|----------|
| **APPROVED** | Zero Must Fix items. Should Fix items are minor. |
| **NEEDS WORK** | 1+ Must Fix items, OR 3+ Should Fix items. |

Default verdict is **NEEDS WORK** — the artifact must earn approval.

### Step 5 — Update STATE.md

Record review completion, verdict, and finding counts.

---

## Constraints

- Does not review code — redirect to SKL-0016 (Code Review) for source files
- Does not review security — redirect to SKL-0015 (Security Audit) for security concerns
- Read-only analysis — does not modify the reviewed artifact unless the user explicitly asks
- Every criticism must include a specific fix recommendation
- Beginner-friendly: review summary should be understandable by a non-technical reader

---

## Primary Agent

reviewer

---

## Definition of Done

- [ ] Artifact type identified and correct checklist applied
- [ ] All checklist items evaluated
- [ ] Findings categorized (Must Fix / Should Fix / Nice to Have)
- [ ] Each finding has location, issue, and fix recommendation
- [ ] Verdict issued (APPROVED / NEEDS WORK)
- [ ] Must Fix items added as tasks to Next Task Queue (if NEEDS WORK)
- [ ] STATE.md updated with verdict and finding counts

## Output Contract

| Field | Value |
|-------|-------|
| **Artifacts** | Review summary with categorized findings (Must Fix / Should Fix / Nice to Have) |
| **State Update** | `.claude/project/STATE.md` — mark task complete, log verdict and finding counts |
| **Handoff Event** | `TASK_COMPLETED` (if APPROVED) or `REWORK_REQUESTED` (if NEEDS WORK) |

Related Skills

Differential Security Review

5
from BasharAmso/Bashi

Security-focused review of code changes using git diff analysis. Identifies security implications of recent modifications — new attack surfaces, removed protections, changed auth logic, and risky refactors. Complements SKL-0016 (Code Review) with a security lens on diffs.

Code Review

5
from BasharAmso/Bashi

Review code for correctness, maintainability, and best practices. Uses a structured two-pass review (CRITICAL then INFORMATIONAL) with interactive issue resolution. Includes scope challenge, failure mode analysis, and TODOS.md cross-reference. Use this skill when a code review is requested on new or modified code.

Supply Chain Audit

5
from BasharAmso/Bashi

Audit the dependency supply chain for security risks beyond what `npm audit` or `pip audit` catches. Analyzes dependency health, maintainer trust signals, typosquatting risk, and transitive dependency exposure.

SEO Audit

5
from BasharAmso/Bashi

Audit web pages for search engine optimization: meta tags, heading hierarchy, structured data, image optimization, mobile-friendliness, and content quality. Complements SKL-0013 (Growth & Distribution) by validating what was built.

Pitch Deck

5
from BasharAmso/Bashi

Create a structured pitch deck outline for investors, stakeholders, or partners. Covers problem, solution, market, traction, team, and ask. Natural output after PRD + Problem Stress Test validation.

Launch Checklist

5
from BasharAmso/Bashi

Pre-launch validation covering everything deployment (SKL-0021) doesn't: analytics, error tracking, social meta, legal pages, email setup, DNS, SSL, and go-live readiness. Produces a launch readiness report with pass/fail checklist. Use this skill before going live on any project.

Insecure Defaults Detection

5
from BasharAmso/Bashi

Detect insecure default configurations, hardcoded credentials, fail-open security patterns, and dangerous default values in application code and configuration files. Complements SKL-0015 (Security Audit) by focusing on configuration-level vulnerabilities that dependency scanners miss.

Copywriting

5
from BasharAmso/Bashi

Write conversion-focused copy using proven frameworks (AIDA, PAS, BAB). Produces headlines, CTAs, landing page copy, email sequences, and micro-copy. Ensures copy matches brand voice and target audience.

Competitor Analysis

5
from BasharAmso/Bashi

Structured competitor research: features, pricing, positioning, gaps, and differentiation strategy. Feeds into PRD Writing (SKL-0004) and Problem Stress Test (SKL-0027) with better market context.

UX Design

5
from BasharAmso/Bashi

Design user experiences including wireframes, flows, and interaction patterns. Use this skill when UX design work is requested, including onboarding flows and interface layouts.

User Acceptance Testing

5
from BasharAmso/Bashi

Structured QA testing with four modes: diff-aware (auto-scoped to branch changes), full (systematic exploration), quick (30-second smoke test), and regression (compare against baseline). Produces health score, structured reports, and actionable bug lists. Use this skill when UAT is requested or a feature is ready for acceptance testing.

Token Audit

5
from BasharAmso/Bashi

Audit the current project for token waste patterns. Produces a Token Health Report with scored findings and actionable fixes. Use this skill when token usage feels high, sessions are hitting limits, or before optimizing costs.